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Abstract 
Problem 

To provide an encryption system which can be appropriately adapted to the desired 
security level and the application, so that it is possible to maintain the higher security level. 



Means to solve 

When an operator inserts IC card (40-1) into transmitter (1), IC card reader (1 1) verifies 
the identity of the operator, encryption part (13) uses an RSA public key stored in the IC card to 
encrypt data for transmission with the public key, and transmitting part (14) transmits the 
encrypted data to receiver (30) via the Internet (20). On the receiving side, an operator and 
his/her supervisor simultaneously insert IC cards (40-2) and (40-3) in receiver (30), and IC card 
reader (31) thereby authenticates the operator and the authorized person. Collator (32) collates 
the correspondence between the operator and the authorized person. If the correspondence 
relation is appropriate, the data received by receiving part (33) are decrypted by means of the 
confidential key stored in IC card (40-2) of the operator by decryption part (34). 
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34 Decryption part 
40-1 ICcard 

Public key 

Confidential key 
40-2 IC card 

Confidential key 
40-3 IC card 

Public key 

Claims 

1. An encryption system characterized in that it comprises of the following parts: 

a first information storage medium in which a confidential key is stored for use in the 
prescribed public key encryption system, 

a second information storage medium in which the public key corresponding to said 
confidential key is stored, 

and an encryption processor that includes an information storage medium detection 
means that detects whether the first information storage medium and the second information 
storage medium are presented more or less simultaneously, and an encryption processing means 
that performs the prescribed processing pertaining to said encryption system by using the 
confidential key or public key stored in said first information storage medium or said second 
information storage medium if said first information storage medium and said second 
information storage medium are presented more or less simultaneously. 

2. The encryption system described in Claim 1, characterized in that said prescribed 
encryption system is used in the public key encryption system. 

3. The encryption system described in Claim 1 or 2, characterized in that: 

the operator who performs said desired processing holds either said first information 
storage medium or said second information storage medium, 

of said first information storage medium and second information storage medium, the one 
that is not held by the operator is held by the supervisor who is responsible for the actions of said 
operator, 

and said desired operation is performed only if said supervisor and said operator are 
acknowledged at effectively the same time. 

4. The encryption system described in any of Claims 1-3, characterized in that it also 
includes 

a third information storage medium in which the confidential key for use in the 
prescribed public key encryption system and the public key corresponding to said confidential 
key are stored, 
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and a second encryption processor that includes an information storage medium detection 
means that detects whether said third information storage medium is presented, and an 
encryption processing means that performs the desired processing pertaining to said encryption 
system using said confidential key or said public key stored in said third information storage 
medium if said third information storage medium is presented; 

wherein the desired information is encrypted by said prescribed public key encryption 
system and is communicated between at least said first encryption processor and said second 
encryption processor. 

Detailed explanation of the invention 
[0001] 

Technical field of the invention 

The present invention pertains to an encryption system with a high security level that can 
be preferably used in a communication system, etc., via, the Internet, e.g., and uses an IC card to 
encrypt the information with a public key. 

[0002] 
Prior art 

With the development of information processing and communications technology, there 
appears to be an environment in which data transmission/reception can be easily performed on a 
large scale. On the other hand, in order to improve the efficiency of conducting diverse 
transactions, there is a trend toward quickly developing an IT method of conducting transactions 
so that information can be communicated more efficiently via communications networks. 

[0003] 

One of the most important factors that should be taken into consideration in this context 
pertains to maintaining the security levels. For example, communication via the Internet 
characterized by a relatively low security level, so that important data should be encrypted for 
transmission/reception. Various encryption systems have been studied and adopted for this 
purpose. Also, an operator that handles a communication device can initiate operations after 
his/her identity has been verified. 

[0004] 

A communication system that adopts the aforementioned security measures of the prior 
art operates as follows: the ID No., public key and confidential key of the IC card owner are 
recorded; during transmission/reception, or during encryption or decryption, the identity of the 
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operator using said IC card is verified. After verification, a certain key stored in the card is 
selected to encrypt or decrypt data. 

[0005] 

Problems to be solved by the invention 

However, if someone uses an RSA encryption key to encrypt or decrypt data, it is thought 
for example, that the aforementioned conventional system will pose no major problems. 
However, when it is used between companies, depending on the security level of the original file, 
the operator may not be allowed to read the file. That is, if direct communication is to be 
performed with an authorized person or his/her supervisor with assigned prescribed rights, the 
operation should at least be able to be performed under the strict supervision by said authorized 
person or his/her supervisor. 

[0006] 

On the other hand, even in such cases, depending on the relationship between the 
companies and the difference in scale, there may be no need for complicated verification on the 
transmitting side, and a single operator may be able to perform the required operations without 
any problems. In such cases, the operation can be performed by a single person on the 
transmitting side and by plural persons on the receiving side who conduct verification processes. 
The difference in security levels between the two sides may be apparent. But no appropriate 
systems that can accommodate the requested security level or application exist. As a result, it is 
only possible to select a system that can be adapted to the more easily handled security. 
Consequently, the security level of the system may become too low. 

[0007] 

Consequently, the purpose of the present invention is to provide an encryption system 
that can be appropriately adapted to the desired security level and the given application, so that 
the higher security level can be maintained. 

[0008] 

Means to solve the problems 

In order to solve the aforementioned problem, the present invention provides an 
encryption system characterized in that it comprises the following: a first information storage 
medium in which a confidential key for use in the prescribed public key encryption system is 
stored, a second information storage medium in which the public key corresponding to said 
confidential key is stored, and an encryption processor that includes an information storage 
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medium detection means that detects whether the first information storage medium and the 
second information storage medium are presented more or less simultaneously, and an 
encryption processing means, which performs the prescribed processing pertaining to said 
encryption system by using the confidential key or public key stored in said first information 
storage medium or said second information storage medium if said first information storage 
medium and said second information storage medium are presented more or less simultaneously. 

[0009] 

Said prescribed encryption system is a public key encryption system. The following 
scheme is preferred: the operator who performs said desired processing holds either said first 
information storage medium or said second information storage medium; of said first 
information storage medium and second information storage medium, the one that is not held by 
the operator is held by the supervisor who is responsible for the actions of said operator, and said 
desired operation is performed only when said supervisor and said operator are acknowledged at 
effectively the same time. 

[0010] 

Also, the following scheme is preferred: the system also comprises a third information 
storage medium, in which the confidential key for use in the prescribed public key encryption 
system and the public key corresponding to said confidential key are stored, and a second 
encryption processor that includes an information storage medium detection means, which 
detects whether said third information storage medium is presented, and an encryption 
processing means, which performs the desired processing pertaining to said encryption system 
using said confidential key or said public key stored in said third information storage medium if 
said third information storage medium is presented; wherein the desired information is encrypted 
by said prescribed public key encryption system and is communicated between at least said first 
encryption processor and said second encryption processor. 

[0011] 

Embodiment of the invention 

In the following, an explanation will be given regarding an embodiment of the present 
invention with reference to Figures 1-3. In this embodiment, the present invention is explained 
with reference to a communication system that includes a transmitter and a receiver that perform 
transmission via the Internet. 
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[0012] 

First, the schematic constitution and operation of communication system (1) of the 
present embodiment will be explained. Figure 1 is a block diagram schematically illustrating the 
overall communication system (1) in an embodiment of the present invention. Said 
communication system (1) includes transmitter (10) and receiver (30) connected via the 
Internet (20). 

[0013] 

Said transmitter (10) encrypts the desired data, and transmits the encrypted data via the 
Internet (20) to receiver (30). In transmitter (10), the encryption and processing of data for 
transmission is performed when the operator inserts his/her IC card (40-1) by using the public 
key or confidential key in the public key encryption system stored in said IC card (40-1). Also, 
transmitter (10) is a personal computer etc., that has a communication function and interface 
function with the IC card. 

[0014] 

Said receiver (30) receives and decodes the encrypted data transmitted from transmitter 
(10) via the Internet (20). For receiver (30), when IC card (40-2) held by the communication 
operator and IC card (40-3) held by the supervisor or another prescribed authorized person are 
inserted in receiver (30) at effectively the same time, it is possible for data to be received and 
decrypted. 

[0015] 

The confidential key of the public key encryption system corresponding to the public key 
stored in IC card (40-1) held by the communication operator on the transmission side is stored in 
IC card (40-2) held by the communication operator, and the public key corresponding to said 
confidential key is stored in IC card (40-3) held by the authorized person. Also, an ID No. is 
stored in each of said IC card (40-2) held by the communication operator and IC card (40-3) held 
by the authorized person that is used to recognize said correspondence relation. Consequently, 
first by checking the ID Nos. stored in IC card (40-2) and IC card (40-3), it is determined 
whether the communication operator and the authorized person are the legitimate operator and 
authorized person, respectively, and whether the legitimate operator and authorized person are 
performing their operations at effectively the same time. If so, the confidential key stored in IC 
card (40-2) held by the communication operator is used to decrypt the received data. 
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[0016] 

If both IC cards are inserted at effectively the same time, it is made known that said two 
IC cards were inserted simultaneously via plural IC card interfaces, or that said two IC cards 
were successively inserted within a prescribed short time interval via a single IC card interface. 
Also, the Internet (20) is accessed on a personal computer that has a communication function and 
interface function with the IC card. 

[0017] 

In communication system (1) with said constitution, on the transmitting side, the verified 
communication operator inserts IC card (40-1) in transmitter (10), the desired data are encrypted 
on transmitter (10) and are transmitted via the Internet (20). On the receiving side, the 
communication operator who holds IC card (40-2) and the authorized person who holds IC card 
(40-3) insert said IC cards (40-2) and (40-3) in receiver (30), and, since the operation is 
performed simultaneously, the received data can be decrypted, and appropriate data reception 
can be performed. 

[0018] 

In the following, an explanation will be given regarding the detailed constitution and 
operation of communication system (1) with reference to Figures 2 and 3. Figure 2 is a block 
diagram illustrating the detailed constitution of communication system (1). 

[0019] 

Said transmitter (10) includes IC card reader (11), encryption part (13) and transmitting 
part (14). Said IC card (40-1) stores the public key of the public key encryption system and the 
ID No. for identifying the holder of the IC card. Said IC card reader (1 1) reads the ID No. from 
IC card (40-1) inserted by the operator, and it detects whether the operator is authorized to 
transmit data via transmitter (10). If so, the RSA public key stored in the card is read from IC 
card (40-1) and output to encryption part (13). 

[0020] 

Said encryption part (13) encrypts the desired data assigned by the operator on the basis 
of the public key input by IC card reader (11), and it outputs the result to transmitting part (14). 
Said transmitting part (14) transmits the encrypted data input from encryption part (13) via the 
Internet (20) to receiver (30). 
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[0021] 

Said receiver (30) includes IC card reader (31), collator (32), receiving part (33) and 
decryption part (34). Said IC card (40-2) stores the confidential key of the public key encryption 
system and the ID No. specifying the holder of the IC card. Said IC card (40-3) stores the public 
key of the public key encryption system and the ID No. specifying the holder of the IC card. 

[0022] 

Said IC card reader (31) reads the ID Nos. from IC card (40-2) inserted by the 
communication operator and IC card (40-3) inserted by the supervisor of the communication 
operator or an authorized person, and it checks whether the operator and the authorized person 
are the legitimate operator and authorized person, respectively. If so, the read ID Nos. are output 
to collator (32), and the confidential key is read from IC card (40-2) inserted by the 
communication operator and output to decryption part (34). 

[0023] 

Said collator (32) checks the ID Nos. read from inserted IC card (40-2) and IC card 
(40-3) inserted by the communication operator and the authorized person, respectively, input 
from IC card reader (32) [sic; (31)], and collates the correspondence between the operator and 
the authorized person. The collation result is output to decryption part (34). 

[0024] 

Said receiving part (33) receives the encrypted data transmitted from transmitter (10) via 
the Internet (20), and outputs the data to decryption part (34). 

[0025] 

When the collation result input from collator (32) verifies the correspondence between 
the operator and the authorized person, decryption part (34) decrypts the encrypted data input 
received by receiving part (33) by means of the confidential key input by IC card reader (31). 

[0026] 

In communication system (1) with said constitution, as shown in Figure 3, first, when the 
operator inserts IC card (40-1) in communication system (1), IC card reader (11) verifies the 
operator. If the operator is verified, the public key stored in said IC card (40-1) is used to encrypt 
the desired data for transmission in encryption part (13) with the public key. Then, the public key 
encrypted data are transmitted by transmitting part (14) to receiver (30) via the Internet (20). 
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[0027] 

On the receiving side, the operator and his/her supervisor or an authorized person 
simultaneously insert IC cards (40-2) and (40-3), respectively, in receiver (30), in IC card reader 
(31), and the operator and the authorized person are verified. In addition, collator (32) collates 
the correspondence between the operator and the authorized person. Once the operator and the 
authorized person have both been verified, and their correspondence relation is appropriate, the 
encrypted data received by receiving part (33) are decrypted with the confidential key stored in 
IC card (40-2) of the operator in decryption part (34). 

[0028] 

As explained above, in communication system (1) of the present embodiment, when the 
received data are decoded, it is necessary to have both the IC card of the supervisor and the IC 
card of the operator. Consequently, if the operator attempts to decrypt by himself or herself, it 
will be impossible to obtain the data, so a communication system with a high security level can 
be constructed. 

[0029] 

The present invention is not limited to the aforementioned embodiment, and any 
appropriate modification can be performed. For example, in the present embodiment, on the 
receiving side, the confidential key is stored in the IC card of the operator and the public key 
stored in the IC card of the supervisor. However, the present invention is not limited to this 
scheme. For example, a scheme in which the supervisor holds the IC card with the stored 
confidential key, and the operator holds the IC card with the stored public key. Also, said cards 
may be held by two equal-level employees regardless of their relative status. 

[0030] 

In the explanation of the embodiment above, a discrete transmitter and receiver were 
treated separately. However, they are usually integrated into a single communication device (1), 
and such a constitution may also be used in practice. In such cases, with receiver (30), it is 
possible to encrypt and transmit data when the two IC cards held by the operator and the 
supervisor, respectively, are inserted simultaneously. In this case, the public key stored in either 
of said two IC cards is used for encryption. In such a case, in transmitter (10), both the public 
key and the confidential key are stored in a single IC card held by the operator, and the 
confidential key is used to decode the data transmitted from receiver (30). The essence of the 
present invention is that on at least one communication side, the encryption and decoding are 
performed with the acknowledgement of plural operators or supervisors. Consequently, 
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modification of the configuration, how the keys are held, etc. is within the scope of the present 
invention. 

[0031] 

In this embodiment, the verification of the holders of the IC cards is performed on the 
basis of the ID Nos. stored in the IC cards. However, a scheme in which the confidential key or 
public key is stored in the IC card can also be used. 

[0032] 

Effects of the invention 

As explained above, the encryption system of the present invention can be used to adapt 
appropriately to the desired security level and the given application. As a result, it is possible to 
maintain the security level with the encryption system of the present invention. 

Brief description of the figures 

Figure 1 is a diagram illustrating the schematic constitution of the communication system 
in an embodiment of the present invention. 

Figure 2 is a diagram illustrating the detailed constitution of the communication system 
shown in Figure 1 . 

Figure 3 is a schematic diagram illustrating the operation of the communication system in 
the present embodiment. 

Explanation of symbols 
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